Vulnerabilities > CVE-2007-1350 - Buffer Overflow vulnerability in Novell Netmail 3.5.2
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL network
novell
Summary
Stack-based buffer overflow in webadmin.exe in Novell NetMail 3.5.2 allows remote attackers to execute arbitrary code via a long username during HTTP Basic authentication.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |
Saint
bid | 22857 |
description | NetMail WebAdmin username buffer overflow |
id | web_tool_netmailwebadminbo |
osvdb | 33886 |
title | netmail_webadmin_username |
type | remote |
References
- http://download.novell.com/Download?buildid=sMYRODW09pw
- http://secunia.com/advisories/24445
- http://securityreason.com/securityalert/2395
- http://www.kb.cert.org/vuls/id/919369
- http://www.securityfocus.com/archive/1/462154/100/0/threaded
- http://www.securityfocus.com/bid/22857
- http://www.securitytracker.com/id?1017734
- http://www.vupen.com/english/advisories/2007/0870
- http://www.zerodayinitiative.com/advisories/ZDI-07-009.html
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32861